Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
File: HDRPEVl1lIgoU6eVgd0r94nusx8.mft (raw, json)
Hash identifier: 9C7FQxqvWWABScDn8ITuCFhhWhFt66bRgXzMvePr27E=
Subject key identifier: 3C:93:1A:D2:70:57:09:F3:C7:5E:E2:69:FF:C7:18:8E:36:22:26:15
Authority key identifier: 1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
Certificate issuer: /CN=1c344f11597594882853a79581dd2bf789eeb31f
Certificate serial: 0199FD3445C606ACADDF7772508F385CC338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
Manifest number: 14B6
Signing time: Sun 19 Oct 2025 16:01:25 +0000
Manifest this update: Sun 19 Oct 2025 16:01:25 +0000
Manifest next update: Mon 20 Oct 2025 16:01:25 +0000
Files and hashes: 1: HDRPEVl1lIgoU6eVgd0r94nusx8.crl (hash: jkaWDCAKz3+EXxzmp71bet5rAD3M9zFL2zZoaQE49Hk=)
2: OLwYzj-fOtPupeVPjMakvIdCk14.roa (hash: w82sMMgD2hDeR96YGrYPpR7eSx7BTygOkVtPfhR7sSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:45:c6:06:ac:ad:df:77:72:50:8f:38:5c:c3:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c344f11597594882853a79581dd2bf789eeb31f
Validity
Not Before: Oct 19 16:01:25 2025 GMT
Not After : Oct 20 16:01:25 2025 GMT
Subject: CN=3c931ad2705709f3c75ee269ffc7188e36222615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2f:ae:b6:3e:74:06:f5:92:5f:f3:4b:9c:e1:
8b:c4:d8:e3:6e:56:ed:5d:ab:e1:1b:c0:62:1f:d2:
a0:e6:af:29:8c:7d:65:bc:bd:77:e9:7d:28:67:f7:
3a:a2:06:0a:ff:6d:a1:95:04:4e:7e:97:67:d6:b6:
15:79:61:c5:7a:0d:19:8a:18:b9:2c:1b:90:ac:ed:
86:43:cc:3d:43:b2:6d:ae:1b:6f:31:3b:62:fd:88:
9d:21:7e:75:06:8b:b9:e5:fb:67:56:ff:1c:66:63:
ec:73:ca:40:21:70:9a:b7:bf:5d:75:18:78:3d:7b:
0e:0f:be:1c:ee:14:88:73:1d:ee:0d:cd:ff:ae:d1:
53:f4:79:21:9b:8b:37:b0:26:16:1e:05:cb:8a:d2:
f9:1d:3c:9b:b9:a5:ab:be:33:f3:e4:6a:bc:4d:e0:
bf:83:e1:06:c1:8d:02:b0:03:03:28:10:da:9f:a8:
32:be:da:bd:83:4c:15:05:ec:9b:a3:fa:ee:81:82:
be:3e:b4:df:8d:f8:64:f9:e0:87:54:9e:d7:7c:56:
35:09:a2:88:94:1f:8d:94:12:ad:4e:d0:96:2b:7e:
2d:64:da:04:23:80:5e:7c:f8:cc:7d:01:67:4e:28:
d3:d9:57:1d:76:38:4c:fb:64:1c:72:b2:c5:f9:ab:
db:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:93:1A:D2:70:57:09:F3:C7:5E:E2:69:FF:C7:18:8E:36:22:26:15
X509v3 Authority Key Identifier:
keyid:1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d6:83:e6:67:dd:bd:85:5e:77:b7:96:45:c9:f9:60:0e:e9:
07:ec:89:af:39:6a:76:f1:2c:ca:da:ef:b2:d4:3f:c1:ee:d8:
a5:46:0d:90:39:26:e3:33:9a:d3:01:d2:38:31:52:9b:c8:35:
e0:56:a3:8d:c6:60:fa:7d:aa:bc:66:9c:d7:54:85:94:3d:f9:
f2:58:2e:31:c5:58:17:b5:c8:53:ab:70:85:38:f7:01:10:d6:
26:e7:f1:15:d1:a4:fe:eb:93:79:c8:af:2b:0c:20:78:35:c8:
8a:dd:90:32:f5:13:78:4b:9d:a6:b4:6d:36:65:6e:87:d5:aa:
c1:67:0b:4a:c6:4e:a8:26:b4:08:30:e8:3f:e5:5a:38:8c:d5:
63:7e:bd:5a:fd:70:5d:34:19:c3:20:f6:b4:24:3c:36:66:dd:
91:88:6e:96:d4:47:19:57:14:b0:b1:9c:1a:10:79:4c:6b:6e:
cf:80:82:54:bd:89:c5:d5:e8:60:27:26:17:d2:7e:6e:ad:72:
96:13:d2:a3:89:88:e0:5f:5c:d7:fb:cd:f3:c4:71:f7:71:3c:
6d:c1:cb:b9:c2:29:d3:19:4d:f5:a0:31:0d:fc:a0:24:00:cf:
2e:e5:f0:22:9e:65:a3:70:5a:33:bc:2a:16:11:e1:a6:2e:41:
d7:6a:4f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:04:00 2025 by rpki-client